Описание
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues:
- Firefox Extended Support Release 78.6.1 ESR
- Fixed: Critical security issue MFSA 2021-01 (bsc#1180623)
- CVE-2020-16044 Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk
Список пакетов
Container suse/kiosk/firefox-esr:esr
MozillaFirefox-78.6.1-8.23.1
Container suse/kiosk/firefox-esr:latest
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP4-SAP-Azure-LI-BYOS
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP6-SAP-Azure-LI-BYOS
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP7-SAP-Azure-LI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP7-SAP-Azure-VLI-BYOS-Production
MozillaFirefox-78.6.1-8.23.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
MozillaFirefox-78.6.1-8.23.1
MozillaFirefox-devel-78.6.1-8.23.1
MozillaFirefox-translations-common-78.6.1-8.23.1
MozillaFirefox-translations-other-78.6.1-8.23.1
Ссылки
- Link for SUSE-SU-2021:0071-1
- E-Mail link for SUSE-SU-2021:0071-1
- SUSE Security Ratings
- SUSE Bug 1180623
- SUSE CVE CVE-2020-16044 page
Описание
Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.
Затронутые продукты
Container suse/kiosk/firefox-esr:esr:MozillaFirefox-78.6.1-8.23.1
Container suse/kiosk/firefox-esr:latest:MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:MozillaFirefox-78.6.1-8.23.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production:MozillaFirefox-78.6.1-8.23.1
Ссылки
- CVE-2020-16044
- SUSE Bug 1180623
- SUSE Bug 1181137